Senior Staff Security Engineer

🕒 April 30

🏄 California – Remote

🏄 California – Remote

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Red Cup IT

WebsiteLinkedInAll Job Openings

11 - 50 employees

Founded 2009

🔒 Cybersecurity

☁️ SaaS

Cybersecurity • SaaS • Managed Services

Red Cup IT is a Managed Service Provider (MSP) specializing in cybersecurity, compliance, and virtual CIO services for mid-sized companies and enterprises. The company is dedicated to providing advanced cybersecurity solutions, IT operations support, and managing complex projects while ensuring a cooperative relationship with clients' in-house IT teams. With a comprehensive focus on security, Red Cup IT offers services including IT skill augmentation, project delivery, and cloud management, all tailored to deliver effective and secure IT environments for its clients.

📋 Description

• Strategic Security Architecture & Product Strategy • Tier 4 Escalation & Forensic Mastery • Security Engineering & Hyper-Automation • High-Stakes Advisory & Governance

🎯 Requirements

• 8–12+ Years in Information Security, with a significant background (3+ years) in multi-client consulting or MSP environments. • Force Multiplier: Proven track record of leading cross-functional projects and mentoring senior engineers without direct-report authority. • Bilingual Communication: The rare ability to pivot from a deep-dive technical audit with an engineer to a risk-based ROI presentation for a CEO. • Expert-level AWS/Azure security; Zero Trust Architecture (ZTA); Advanced IAM/Entra ID. • Advanced SOAR/SIEM engineering (Sentinel, Splunk, CrowdStrike); MITRE ATT&CK mapping. • Deep-packet inspection; BGP security; SD-WAN; SASE; Micro-segmentation. • Proficiency in Python, Terraform, or Ansible for infrastructure-as-code. • Certifications CISSP (Highly Preferred), CISM, CCSP, or specialized GIAC (GCIH/GCFA).

🏖️ Benefits

• Scalable Multi-tenancy: Architect and maintain hardened, isolated security stacks (SIEM, EDR, XDR) designed to scale across hundreds of distinct client environments. • Product Vetting: Serve as the technical lead for vendor evaluations, "battle-testing" emerging tech to define our global standard offerings. • Global Standardization: Engineer "Gold Image" baselines and automated deployment templates based on CIS and NIST frameworks to ensure rapid, secure onboarding. • Final Authority: Serve as the ultimate technical escalation point for the SOC, leading the response to sophisticated APTs and complex breaches. • Post-Mortem Leadership: Conduct deep-dive Root Cause Analysis (RCA) and translate incident findings into systemic, fleet-wide preventative measures. • Security as Code: Build the automation tissue that connects our stack, utilizing Python, PowerShell, and Terraform to automate threat containment and patch management. • Integration Engineering: Develop custom API integrations to bridge gaps between vulnerability scanners, RMM tools, and ticketing systems for seamless auto-remediation. • Strategic vCISO: Act as a high-level advisor for key accounts, translating abstract risk into actionable business roadmaps for C-suite stakeholders. • Compliance Orchestration: Oversee technical evidence collection and governance for HIPAA, SOC 2, and CMMC, ensuring our clients remain audit-ready.